Server applications are configured to run as a separate user account with the minimum privileges needed to perform their functions.
Topic
Restricting privileges for server applications
Applicable to
Non Classified, Official, Protected, Secret, Top Secret
History
Priority
must
Dec 2024
Server applications are configured to run as a separate user account with the minimum privileges needed to perform their functions.
References to ‘accounts’ were changed to ‘user accounts’ in order to more closely match Microsoft Active Directory account types (i.e. ‘users’ and ‘computers’).
Mar 2023
Server applications are configured to run as a separate account with the minimum privileges needed to perform their functions.
An existing control relating to DBMS software being configured to run as a separate account with the minimum privileges needed to perform its functions was expanded to cover all server applications.
2017
DBMS software must be configured to run as a separate account with the minimum privilegesneeded to perform its functions.
Control Text Changed. No public explaination.
2015
Agencies must configure DBMS software to run as a separate account with the minimumprivileges needed to perform its functions.